RMI-PACTA · gbdubs · Nov 16, 2023 · Oct 12, 2023 · Oct 14, 2023 · Oct 16, 2023
diff --git a/cmd/server/BUILD.bazel b/cmd/server/BUILD.bazel
@@ -18,6 +18,7 @@ go_library(
         "//oapierr",
         "//openapi:pacta_generated",
         "//secrets",
+        "//session",
         "//task",
         "@com_github_azure_azure_sdk_for_go_sdk_azcore//:azcore",
         "@com_github_azure_azure_sdk_for_go_sdk_azidentity//:azidentity",

diff --git a/cmd/server/main.go b/cmd/server/main.go
@@ -24,6 +24,7 @@ import (
 	"github.com/RMI/pacta/oapierr"
 	oapipacta "github.com/RMI/pacta/openapi/pacta"
 	"github.com/RMI/pacta/secrets"
+	"github.com/RMI/pacta/session"
 	"github.com/RMI/pacta/task"
 	"github.com/Silicon-Ally/cryptorand"
 	"github.com/Silicon-Ally/zaphttplog"
@@ -312,11 +313,12 @@ func run(args []string) error {
 			// LogEntry created by the logging middleware.
 			chimiddleware.RequestID,
 			chimiddleware.RealIP,
-			zaphttplog.NewMiddleware(logger),
+			zaphttplog.NewMiddleware(logger, zaphttplog.WithConcise(true)),
 			chimiddleware.Recoverer,
 
 			jwtauth.Verifier(jwtauth.New("EdDSA", nil, jwKey)),
 			jwtauth.Authenticator,
+			session.WithAuthn(logger, db),
 
 			oapimiddleware.OapiRequestValidator(pactaSwagger),
 

diff --git a/cmd/server/pactasrv/BUILD.bazel b/cmd/server/pactasrv/BUILD.bazel
@@ -4,6 +4,8 @@ go_library(
     name = "pactasrv",
     srcs = [
         "initiative.go",
+        "initiative_invitation.go",
+        "initiative_user_relationship.go",
         "pacta_version.go",
         "pactasrv.go",
         "portfolio.go",
@@ -18,6 +20,7 @@ go_library(
         "//oapierr",
         "//openapi:pacta_generated",
         "//pacta",
+        "//session",
         "//task",
         "@com_github_go_chi_jwtauth_v5//:jwtauth",
         "@com_github_google_uuid//:uuid",

diff --git a/cmd/server/pactasrv/conv/oapi_to_pacta.go b/cmd/server/pactasrv/conv/oapi_to_pacta.go
@@ -51,6 +51,22 @@ func PactaVersionCreateFromOAPI(p *api.PactaVersionCreate) (*pacta.PACTAVersion,
 	}, nil
 }
 
+func InitiativeInvitationFromOAPI(i *api.InitiativeInvitationCreate) (*pacta.InitiativeInvitation, error) {
+	if i == nil {
+		return nil, oapierr.Internal("initiativeInvitationToOAPI: can't convert nil pointer")
+	}
+	if !initiativeIDRegex.MatchString(i.Id) {
+		return nil, oapierr.BadRequest("id must contain only alphanumeric characters, underscores, and dashes")
+	}
+	if i.InitiativeId == "" {
+		return nil, oapierr.BadRequest("initiative_id must not be empty")
+	}
+	return &pacta.InitiativeInvitation{
+		ID:         pacta.InitiativeInvitationID(i.Id),
+		Initiative: &pacta.Initiative{ID: pacta.InitiativeID(i.InitiativeId)},
+	}, nil
+}
+
 func ifNil[T any](t *T, fallback T) T {
 	if t == nil {
 		return fallback

diff --git a/cmd/server/pactasrv/conv/pacta_to_oapi.go b/cmd/server/pactasrv/conv/pacta_to_oapi.go
@@ -54,6 +54,46 @@ func PactaVersionToOAPI(pv *pacta.PACTAVersion) (*api.PactaVersion, error) {
 	}, nil
 }
 
+func InitiativeInvitationToOAPI(i *pacta.InitiativeInvitation) (*api.InitiativeInvitation, error) {
+	if i == nil {
+		return nil, oapierr.Internal("initiativeToOAPI: can't convert nil pointer")
+	}
+	var usedAt *string
+	if !i.UsedAt.IsZero() {
+		usedAt = ptr(i.UsedAt.String())
+	}
+	var usedBy *string
+	if i.UsedBy != nil {
+		usedBy = ptr(string(i.UsedBy.ID))
+	}
+	return &api.InitiativeInvitation{
+		CreatedAt:    i.CreatedAt,
+		Id:           string(i.ID),
+		InitiativeId: string(i.Initiative.ID),
+		UsedAt:       usedAt,
+		UsedByUserId: usedBy,
+	}, nil
+}
+
+func InitiativeUserRelationshipToOAPI(i *pacta.InitiativeUserRelationship) (*api.InitiativeUserRelationship, error) {
+	if i == nil {
+		return nil, oapierr.Internal("initiativeUserRelationshipToOAPI: can't convert nil pointer")
+	}
+	if i.User == nil {
+		return nil, oapierr.Internal("initiativeUserRelationshipToOAPI: can't convert nil user")
+	}
+	if i.Initiative == nil {
+		return nil, oapierr.Internal("initiativeUserRelationshipToOAPI: can't convert nil initiative")
+	}
+	return &api.InitiativeUserRelationship{
+		UpdatedAt:    i.UpdatedAt,
+		InitiativeId: string(i.Initiative.ID),
+		UserId:       string(i.User.ID),
+		Manager:      i.Manager,
+		Member:       i.Member,
+	}, nil
+}
+
 func ptr[T any](t T) *T {
 	return &t
 }
diff --git a/cmd/server/pactasrv/initiative_invitation.go b/cmd/server/pactasrv/initiative_invitation.go
@@ -0,0 +1,123 @@
+package pactasrv
+
+import (
+	"context"
+	"fmt"
+	"time"
+
+	"github.com/RMI/pacta/cmd/server/pactasrv/conv"
+	"github.com/RMI/pacta/db"
+	"github.com/RMI/pacta/oapierr"
+	api "github.com/RMI/pacta/openapi/pacta"
+	"github.com/RMI/pacta/pacta"
+	"go.uber.org/zap"
+)
+
+// Creates an initiative invitation
+// (POST /initiative-invitation)
+func (s *Server) CreateInitiativeInvitation(ctx context.Context, request api.CreateInitiativeInvitationRequestObject) (api.CreateInitiativeInvitationResponseObject, error) {
+	// TODO(#12) Implement Authorization
+	ii, err := conv.InitiativeInvitationFromOAPI(request.Body)
+	if err != nil {
+		return nil, err
+	}
+	id, err := s.DB.CreateInitiativeInvitation(s.DB.NoTxn(ctx), ii)
+	if err != nil {
+		return nil, oapierr.Internal("failed to create initiative invitation", zap.Error(err))
+	}
+	if id != ii.ID {
+		return nil, oapierr.Internal(
+			"failed to create initiative invitation: ID mismatch",
+			zap.String("requested_id", string(ii.ID)),
+			zap.String("actual_id", string(id)),
+		)
+	}
+	return api.CreateInitiativeInvitation204Response{}, nil
+}
+
+// Deletes an initiative invitation by id
+// (DELETE /initiative-invitation/{id})
+func (s *Server) DeleteInitiativeInvitation(ctx context.Context, request api.DeleteInitiativeInvitationRequestObject) (api.DeleteInitiativeInvitationResponseObject, error) {
+	// TODO(#12) Implement Authorization
+	err := s.DB.DeleteInitiativeInvitation(s.DB.NoTxn(ctx), pacta.InitiativeInvitationID(request.Id))
+	if err != nil {
+		return nil, oapierr.Internal("failed to delete initiative invitation", zap.Error(err))
+	}
+	return api.DeleteInitiativeInvitation204Response{}, nil
+}
+
+// Returns the initiative invitation from this id, if it exists
+// (GET /initiative-invitation/{id})
+func (s *Server) GetInitiativeInvitation(ctx context.Context, request api.GetInitiativeInvitationRequestObject) (api.GetInitiativeInvitationResponseObject, error) {
+	// TODO(#12) Implement Authorization
+	ii, err := s.DB.InitiativeInvitation(s.DB.NoTxn(ctx), pacta.InitiativeInvitationID(request.Id))
+	if err != nil {
+		return nil, oapierr.Internal("failed to retrieve initiative invitation", zap.Error(err))
+	}
+	result, err := conv.InitiativeInvitationToOAPI(ii)
+	if err != nil {
+		return nil, err
+	}
+	return api.GetInitiativeInvitation200JSONResponse(*result), nil
+}
+
+// Claims this initiative invitation, if it exists
+// (POST /initiative-invitation/{id}:claim)
+func (s *Server) ClaimInitiativeInvitation(ctx context.Context, request api.ClaimInitiativeInvitationRequestObject) (api.ClaimInitiativeInvitationResponseObject, error) {
+	userID, err := getUserID(ctx)
+	if err != nil {
+		return nil, err
+	}
+	var customErr api.ClaimInitiativeInvitationResponseObject
+	err = s.DB.Transactional(ctx, func(tx db.Tx) error {
+		ii, err := s.DB.InitiativeInvitation(tx, pacta.InitiativeInvitationID(request.Id))
+		if err != nil {
+			return fmt.Errorf("looking up initiative invite: %w", err)
+		}
+		if !ii.UsedAt.IsZero() || ii.UsedBy != nil {
+			if ii.UsedBy != nil && ii.UsedBy.ID == userID {
+				// We don't return an error if the same user tries to claim the same invitation twice,
+				// which might happen by accident, but wouldn't impact the state of the initiative memberships.
+				// We may want to log this, though.
+				return nil
+			} else {
+				customErr = api.ClaimInitiativeInvitation409Response{}
+				return fmt.Errorf("initiative is already used: %+v", ii)
+			}
+		}
+		err = s.DB.UpdateInitiativeInvitation(tx, ii.ID,
+			db.SetInitiativeInvitationUsedAt(time.Now()),
+			db.SetInitiativeInvitationUsedBy(userID))
+		if err != nil {
+			return fmt.Errorf("updating initiative invite: %w", err)
+		}
+		err = s.DB.UpdateInitiativeUserRelationship(tx, ii.Initiative.ID, userID,
+			db.SetInitiativeUserRelationshipMember(true))
+		if err != nil {
+			return fmt.Errorf("creating initiative membership: %w", err)
+		}
+		return nil
+	})
+	if err != nil {
+		if customErr != nil {
+			return customErr, nil
+		}
+		return nil, oapierr.Internal("failed to claim initiative invitation", zap.Error(err))
+	}
+	return api.ClaimInitiativeInvitation204Response{}, nil
+}
+
+// Returns all initiative invitations associated with the initiative
+// (GET /initiative/{id}/invitations)
+func (s *Server) ListInitiativeInvitations(ctx context.Context, request api.ListInitiativeInvitationsRequestObject) (api.ListInitiativeInvitationsResponseObject, error) {
+	// TODO(#12) Implement Authorization
+	iis, err := s.DB.InitiativeInvitationsByInitiative(s.DB.NoTxn(ctx), pacta.InitiativeID(request.Id))
+	if err != nil {
+		return nil, oapierr.Internal("failed to list initiative invitations", zap.Error(err))
+	}
+	result, err := dereference(mapAll(iis, conv.InitiativeInvitationToOAPI))
+	if err != nil {
+		return nil, err
+	}
+	return api.ListInitiativeInvitations200JSONResponse(result), nil
+}
diff --git a/cmd/server/pactasrv/initiative_user_relationship.go b/cmd/server/pactasrv/initiative_user_relationship.go
@@ -0,0 +1,75 @@
+package pactasrv
+
+import (
+	"context"
+
+	"github.com/RMI/pacta/cmd/server/pactasrv/conv"
+	"github.com/RMI/pacta/db"
+	"github.com/RMI/pacta/oapierr"
+	api "github.com/RMI/pacta/openapi/pacta"
+	"github.com/RMI/pacta/pacta"
+	"go.uber.org/zap"
+)
+
+// Returns all initiative user relationships for the user that the user has access to view
+// (GET /initiative/{id}/user-relationships)
+func (s *Server) ListInitiativeUserRelationshipsByUser(ctx context.Context, request api.ListInitiativeUserRelationshipsByUserRequestObject) (api.ListInitiativeUserRelationshipsByUserResponseObject, error) {
+	// TODO(#12) Implement Authorization
+	iurs, err := s.DB.InitiativeUserRelationshipsByUser(s.DB.NoTxn(ctx), pacta.UserID(request.UserId))
+	if err != nil {
+		return nil, oapierr.Internal("failed to retrieve initiative user relationships by user", zap.Error(err))
+	}
+	result, err := dereference(mapAll(iurs, conv.InitiativeUserRelationshipToOAPI))
+	if err != nil {
+		return nil, err
+	}
+	return api.ListInitiativeUserRelationshipsByUser200JSONResponse(result), nil
+}
+
+// Returns all initiative user relationships for the initiative that the user has access to view
+// (GET /initiative/user-relationships/{id})
+func (s *Server) ListInitiativeUserRelationshipsByInitiative(ctx context.Context, request api.ListInitiativeUserRelationshipsByInitiativeRequestObject) (api.ListInitiativeUserRelationshipsByInitiativeResponseObject, error) {
+	// TODO(#12) Implement Authorization
+	iurs, err := s.DB.InitiativeUserRelationshipsByInitiatives(s.DB.NoTxn(ctx), pacta.InitiativeID(request.InitiativeId))
+	if err != nil {
+		return nil, oapierr.Internal("failed to retrieve initiative user relationships by user", zap.Error(err))
+	}
+	result, err := dereference(mapAll(iurs, conv.InitiativeUserRelationshipToOAPI))
+	if err != nil {
+		return nil, err
+	}
+	return api.ListInitiativeUserRelationshipsByInitiative200JSONResponse(result), nil
+}
+
+// Returns the initiative user relationship from this id, if it exists
+// (GET /initiative/{initiativeId}/user-relationship/{userId})
+func (s *Server) GetInitiativeUserRelationship(ctx context.Context, request api.GetInitiativeUserRelationshipRequestObject) (api.GetInitiativeUserRelationshipResponseObject, error) {
+	// TODO(#12) Implement Authorization
+	iur, err := s.DB.InitiativeUserRelationship(s.DB.NoTxn(ctx), pacta.InitiativeID(request.InitiativeId), pacta.UserID(request.UserId))
+	if err != nil {
+		return nil, oapierr.Internal("failed to retrieve initiative user relationship", zap.Error(err))
+	}
+	result, err := conv.InitiativeUserRelationshipToOAPI(iur)
+	if err != nil {
+		return nil, err
+	}
+	return api.GetInitiativeUserRelationship200JSONResponse(*result), nil
+}
+
+// Updates initiative user relationship properties
+// (PATCH /initiative/{initiativeId}/user-relationship/{userId})
+func (s *Server) UpdateInitiativeUserRelationship(ctx context.Context, request api.UpdateInitiativeUserRelationshipRequestObject) (api.UpdateInitiativeUserRelationshipResponseObject, error) {
+	// TODO(#12) Implement Authorization
+	mutations := []db.UpdateInitiativeUserRelationshipFn{}
+	if request.Body.Manager != nil {
+		mutations = append(mutations, db.SetInitiativeUserRelationshipManager(*request.Body.Manager))
+	}
+	if request.Body.Member != nil {
+		mutations = append(mutations, db.SetInitiativeUserRelationshipMember(*request.Body.Member))
+	}
+	err := s.DB.UpdateInitiativeUserRelationship(s.DB.NoTxn(ctx), pacta.InitiativeID(request.InitiativeId), pacta.UserID(request.UserId), mutations...)
+	if err != nil {
+		return nil, oapierr.Internal("failed to update initiative user relationship", zap.Error(err))
+	}
+	return api.UpdateInitiativeUserRelationship204Response{}, nil
+}
diff --git a/cmd/server/pactasrv/pactasrv.go b/cmd/server/pactasrv/pactasrv.go
@@ -8,6 +8,7 @@ import (
 	"github.com/RMI/pacta/db"
 	"github.com/RMI/pacta/oapierr"
 	"github.com/RMI/pacta/pacta"
+	"github.com/RMI/pacta/session"
 	"github.com/RMI/pacta/task"
 	"go.uber.org/zap"
 )
@@ -44,6 +45,7 @@ type DB interface {
 	InitiativeUserRelationshipsByUser(tx db.Tx, uid pacta.UserID) ([]*pacta.InitiativeUserRelationship, error)
 	InitiativeUserRelationshipsByInitiatives(tx db.Tx, iid pacta.InitiativeID) ([]*pacta.InitiativeUserRelationship, error)
 	PutInitiativeUserRelationship(tx db.Tx, iur *pacta.InitiativeUserRelationship) error
+	UpdateInitiativeUserRelationship(tx db.Tx, iid pacta.InitiativeID, uid pacta.UserID, mutations ...db.UpdateInitiativeUserRelationshipFn) error
 
 	Initiative(tx db.Tx, id pacta.InitiativeID) (*pacta.Initiative, error)
 	Initiatives(tx db.Tx, ids []pacta.InitiativeID) (map[pacta.InitiativeID]*pacta.Initiative, error)
@@ -65,7 +67,7 @@ type DB interface {
 	CreatePortfolioInitiativeMembership(tx db.Tx, pim *pacta.PortfolioInitiativeMembership) error
 	DeletePortfolioInitiativeMembership(tx db.Tx, pid pacta.PortfolioID, iid pacta.InitiativeID) error
 
-	GetOrCreateUserByAuthn(tx db.Tx, authnMechanism pacta.AuthnMechanism, authnID, enteredEmail, canonicalEmail string) (*pacta.User, error)
+	GetOrCreateUserByAuthn(tx db.Tx, mech pacta.AuthnMechanism, authnID, email, canonicalEmail string) (*pacta.User, error)
 	User(tx db.Tx, id pacta.UserID) (*pacta.User, error)
 	Users(tx db.Tx, ids []pacta.UserID) (map[pacta.UserID]*pacta.User, error)
 	UpdateUser(tx db.Tx, id pacta.UserID, mutations ...db.UpdateUserFn) error
@@ -82,10 +84,9 @@ type Blob interface {
 }
 
 type Server struct {
-	DB         DB
-	TaskRunner TaskRunner
-	Logger     *zap.Logger
-
+	DB                DB
+	TaskRunner        TaskRunner
+	Logger            *zap.Logger
 	Blob              Blob
 	PorfolioUploadURI string
 }
@@ -115,3 +116,11 @@ func dereference[T any](ts []*T, e error) ([]T, error) {
 	}
 	return result, nil
 }
+
+func getUserID(ctx context.Context) (pacta.UserID, error) {
+	userID, err := session.UserIDFromContext(ctx)
+	if err != nil {
+		return "", oapierr.Unauthorized("error getting authorization token", zap.Error(err))
-		return "", oapierr.Unauthorized("error getting authorization token", zap.Error(err))
+		return "", oapierr.Unauthorized("error loading user ID", zap.Error(err))
-		return "", oapierr.Unauthorized("error getting authorization token", zap.Error(err))
+		return "", oapierr.Unauthorized("error loading user ID", zap.Error(err))
+	}
+	return pacta.UserID(userID), nil
+}